LLM Black Markets in 2025 – Prompt Injection, Jailbreak Sales & Model Leaks

DumpBrowserSecrets is a publicly available post-exploitation tool that harvests browser-stored credentials and session tokens from major browsers (Chrome, Edge, Brave, Opera variants, Vivaldi and Firefox). It bypasses Chrome's App-Bound Encryption by spawning a headless Chromium process and using DLL injection with the IElevator COM interface, retrieves DPAPI/NSS-protected secrets for other browsers, includes operational evasion techniques, outputs structured JSON, and is intended for red-team assumed-breach testing but can be abused by adversaries to facilitate account compromise and lateral movement.